| Title | TOTOLINK A3600R V5.9c.4959 Buffer Overflow |
|---|
| Description | The TOTOlink A3600R router, firmware version V5.9c.4959, contains a buffer overflow vulnerability in the setAppEasyWizardConfig interface of /lib/cste_modules/app.so. The vulnerability occurs because the apcliSsid parameter is not properly validated for length, allowing remote attackers to trigger a buffer overflow, potentially leading to arbitrary code execution or denial of service. |
|---|
| Source | ⚠️ https://github.com/SunnyYANGyaya/cuicuishark-sheep-fishIOT/blob/main/ToTolink/A3600R/4959-apcliSsid-setAppEasyWizardConfig.md |
|---|
| User | Abcd1234 (UID 94604) |
|---|
| Submission | 01/16/2026 18:19 (3 months ago) |
|---|
| Moderation | 01/30/2026 08:42 (14 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 343480 [Totolink A3600R 5.9c.4959 /lib/cste_modules/app.so setAppEasyWizardConfig apcliSsid buffer overflow] |
|---|
| Points | 20 |
|---|